Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41C39C906C9111F1B251A907CF1D38B0.roa
File: 41C39C906C9111F1B251A907CF1D38B0.roa (raw, json)
Hash identifier: 8zMtDEeoaj9naxZnWWXpuN3UDGjrrGem36Zjsh30bjw=
Subject key identifier: 7B:00:B3:DD:EC:E5:AB:BD:B1:B3:3E:9D:C1:BB:3C:3C:37:DB:87:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01D431
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41C39C906C9111F1B251A907CF1D38B0.roa
Signing time: Sat 20 Jun 2026 10:17:36 +0000
ROA not before: Sat 20 Jun 2026 10:17:30 +0000
ROA not after: Mon 27 Jul 2026 10:17:30 +0000
asID: 63139
IP address blocks: 154.203.169.0/24 maxlen: 24
154.203.170.0/24 maxlen: 24
154.203.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 25 Jun 2026 14:14:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119857 (0x1d431)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 20 10:17:30 2026 GMT
Not After : Jul 27 10:17:30 2026 GMT
Subject: CN=6a3668c0-307b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9d:e5:71:61:61:ef:64:c2:b7:8b:57:d7:4f:
07:3e:d7:b5:be:2d:05:95:8d:e1:7d:72:8e:3e:ec:
1c:12:5e:5b:0d:77:e7:0d:48:79:d3:f4:0e:5f:ba:
2b:47:da:1e:e0:2d:7c:e0:b9:0f:52:96:f7:72:67:
a7:92:65:2e:d8:c3:89:26:d8:95:39:fd:cf:cb:d3:
e2:f7:91:9b:88:3e:e2:a0:21:66:4a:28:98:54:34:
63:b5:18:2d:ee:73:71:0d:c7:6c:2e:25:27:71:94:
32:58:9b:91:3d:d3:eb:e7:bc:52:bc:31:41:c6:96:
db:24:0b:88:56:04:6c:46:a1:de:eb:3f:d4:db:67:
0d:2a:73:43:a4:d7:91:89:3b:be:17:1d:9a:16:1f:
7d:a7:33:fd:82:eb:dd:2f:bc:29:81:2b:12:eb:40:
dc:9b:38:45:c0:a6:f8:e1:e6:7e:13:9f:ae:b0:36:
2c:31:38:19:13:07:38:40:7c:dd:e6:61:23:67:96:
74:c0:91:2b:cf:cc:56:1e:3f:e7:16:15:ce:85:55:
c4:f0:91:44:08:db:c3:20:b1:10:7b:53:a9:0b:8c:
32:91:f0:4e:e4:17:5e:6e:c6:0b:68:ea:fd:b6:ae:
8c:70:95:c3:0b:c8:31:0f:87:46:6d:f7:7e:3e:0f:
4d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:00:B3:DD:EC:E5:AB:BD:B1:B3:3E:9D:C1:BB:3C:3C:37:DB:87:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/41C39C906C9111F1B251A907CF1D38B0.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.169.0-154.203.171.255
Signature Algorithm: sha256WithRSAEncryption
79:8f:fc:e4:56:e5:9d:fd:4f:a2:ba:81:39:f7:37:61:aa:3e:
bd:d4:4b:29:2e:d9:d2:28:79:8b:9d:16:92:60:f5:22:43:dc:
ab:72:25:15:47:23:85:46:01:29:ba:60:d5:0b:09:7e:51:12:
c7:2a:89:46:f7:d7:ae:32:41:bd:4d:a8:83:c6:2a:3e:bc:fc:
dc:a7:53:f0:e2:6e:79:69:8c:c6:86:a8:d7:22:ad:8d:c6:fa:
7d:1d:9b:0d:9b:30:cc:20:cd:e1:fd:b5:e6:e0:e5:e1:cf:99:
67:0a:1d:63:9d:78:8d:e0:4e:57:e7:36:4e:ad:6e:38:c4:9f:
2a:cb:ca:57:32:e5:e4:5d:04:65:8e:80:01:f1:53:1a:cc:29:
d2:b7:77:17:97:00:83:17:16:27:25:54:ec:51:f8:b5:ba:dc:
2d:af:9a:59:ba:14:8a:93:f4:5a:1c:28:ab:18:ee:e8:4a:51:
41:d4:4e:44:0d:6b:3a:00:12:4c:d3:bf:47:c0:85:39:d6:16:
30:b9:f2:ab:da:2d:dc:b5:3e:12:d7:91:32:8c:38:43:e1:91:
5a:e8:ab:cf:b6:a8:e4:ab:ae:55:01:ef:f3:bc:fa:47:f3:12:
10:18:ef:ab:e3:e9:fb:66:30:c1:20:cd:a3:ab:86:6f:9d:4a:
77:75:7c:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 21:52:05 2026 by rpki-client